On Sat, 2002-04-13 at 23:54, Yan Seiner wrote:
> sixx wrote:
> >
> > Hi there,
> >
> > Just a repost and reword, I'm still wondering if there's a way to log
> > ALL ports/traffic and NOT log those known ports?
> >
> > if (port!=22 || port!=80 || port!=110 || ...) {
> > log;
> > }
> >
>
> That will log EVERYTHING. What you want is:
>
> if !(port=22 || port=80 || port=110 || ...) {
> log;
> |
>
> Or, conversely,
>
> if (port!=22 && port!=80 && port!=110 & ...) {
> log;
> }
>
> Now implement those. It will work.
Yup, it does log EVERYTHING which isnt what i want, so now is what would
be the commands to implementing this in iptables?
cheers,
sixx
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
